METHOD AND APPARATUS FOR A MOBILE NODE TO MAINTAIN 
LOCATION PRIVACY FROM SELECTED CORRESPONDENT NODES 



FIELD OF THE INVENTION 

5 This invention relates generally to mobile networks, and, more 

particularly, to a method and apparatus for maintaining location privacy of mobile 
nodes of the mobile network from selected correspondent nodes. 

CROSS REFERENCE TO RELATED APPLICATIONS 

10 This application is related to U.S. Patent Application Serial No. , 

titled "Method and Apparatus for Providing IP Mobility for Mobile Networks/' 
filed concurrently with the present application, assigned to the assignee of the 
present invention and incorporated herein by reference in its entirety. 

15 BACKGROUND OF THE INVENTION 

Many communication systems use Internet Protocol (IP) to transport 
packet data representative of voice, video, data or control traffic between 
endpoints (or "hosts" in IP terminology). In such systems, the data is divided into 
IP packets called datagrams that include addressing information (e.g., source and 

20 destination addresses) that enables various routers forming an IP network to route 
the packets to the specified destination. The destination address may comprise a 
unicast address identifying a particular host or a multicast address shared by a 
group of hosts. Typically, the hosts include various fixed devices and mobile 
wireless devices, often called mobile terminals, that are capable of roaming from 

25 site to site or even between different communication networks that use IP. 

As wireless communication and mobile internet access have grown in 
popularity, it is envisioned that multiple IP-addressable devices will be carried 
within a car, airplane, train (or even on a person). Such a collection of devices is 
known as a mobile network and the IP-addressable devices residing within the 

30 mobile network are known as mobile network nodes. It would be desirable to 

provide for IP mobility of the mobile network, that is to maintain IP connectivity 

CM05016H 1 Express Mail Label No. ET339127252US 



for the mobile network nodes as the mobile network moves from site to site or 
between different communication networks. 

The most recent IP standard, Internet Protocol version 6, called "IPv6," 
supports IP mobility for individual mobile nodes (presently defined in "draft-ietf- 
5 mobileip-ipv6-14.txt") but does not address mobile networks. Generally, mobile 
IPv6 provides for a mobile node to move to different sites or networks without 
changing its IP address. A mobile node is always addressable by its "home" IP 
unicast address associated with a home site or network, regardless of the node's 
current point of attachment to the network infrastructure. While situated away 
10 from its home network, the mobile node is also associated with a unicast 
forwarding address (known as a "care of address). The mobile node is 
addressable either directly by the care of address or indirectly by the home 
address. In the latter case, the IPv6 protocol causes packets addressed to the home 
address to be intercepted by a "home agent" and tunneled to the care of address in 
15 a manner known as triangular routing. 

To that end, mobile IPv6 relies upon a mobile node recognizing when it is 
at a foreign site and, in such case, to inform its home agent of its new care of 
address. This is accomplished by a message termed a "binding update." The 
mobile terminal may also send binding updates to various devices (termed 
20 "correspondent nodes") prospectively corresponding with the mobile node, such 
that the correspondent nodes will use the new care of address rather than the home 
address to avoid triangular routing. Optionally, the binding updates may be 
"piggybacked" or embedded with other messages sent to the home agent or 
correspondent node. 

25 A problem that arises (and the main reason why mobile IPv6 does not 

support mobile networks) is that the mobile network nodes are not necessarily 
capable of recognizing when they are at a foreign site or new access technology, 
such that they would be able obtain respective care of addresses and send binding 
updates. Indeed, it is preferred that most mobile network nodes, while attached to 

30 the mobile network, need not be aware of the movement of the mobile network 
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from site to site or to new access technologies. Moreover, even if they were, it is 
preferred that most mobile network nodes will not send binding updates so as to 
prevent so called binding update "storms" that could result from multiple mobile 
network nodes simultaneously sending binding update messages through the 
5 network. As will be appreciated, binding update storms create network traffic 
overhead that can adversely affect handoff times and quality of service of the 
network. 

A related problem is that binding updates contain implied geographic 
location information that enable a recipient of the binding update to determine the 

10 location of a mobile network node. It would be desirable for certain mobile 
network nodes (i.e., those that do not wish to broadcast their new location 
throughout the network), to establish privacy attributes that would specify to 
whom binding updates should be sent through the network on their behalf. In 
such manner, the mobile network node could keep its location secret from some, 

15 or all correspondent nodes based on the privacy attributes. Advantageously, the 
privacy attributes may be selected independently by individual mobile network 
nodes. 

Accordingly, a need has arisen to provide DP mobility support for mobile 
networks in a manner that builds upon the capabilities of mobile-IPv6, yet reduces 

20 or eliminates the number of binding updates that are required upon movements of 
the mobile network from site to site or between dissimilar access technologies. 
Advantageously, the EP mobility solution will allow for mobile network nodes to 
specify how binding updates should be sent on their behalf as the mobile network 
moves from site to site. The present invention is directed to satisfying these 

25 needs. 



BRIEF DESCRIPTION OF THE DRAWINGS 

The foregoing and other advantages of the invention will become apparent 
upon reading the following detailed description and upon reference to the 
30 drawings in which: 
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FIG. 1 is a block diagram showing an example multi-site communication 
system incorporating mobile networks according to the present invention; 

FIG. 2 is a block diagram of a mobile router according to the present 
invention; 

FIG. 3 is a flowchart showing steps performed by mobile routers in 
obtaining a multicast care of address, binding the multicast care of address to a 
subnet prefix and communicating the multicast care of address to correspondent 
nodes according to the invention; 

FIG. 4 is a flowchart showing steps performed by mobile routers to 
accomplish smooth vertical handoffs according to the invention; 

FIG. 5 is a flowchart showing steps performed by mobile routers to 
process IP packets sent from a correspondent node to a mobile network node 
according to the invention; 

FIG. 6 is a flowchart showing steps performed by mobile routers to 
process IP packets sent from a mobile network node to a correspondent node 
according to the invention; 

FIGs. 7a-g portray a sequence of movement of a mobile network wherein 
binding updates are minimized according to the present invention; 

FIG. 8 is a flowchart showing steps performed by a mobile network node 
to establish privacy policies instructing its mobile router when to send binding 
updates; and 

FIG. 9 shows steps performed by a mobile router in determining when and 
to which CNs to send binding updates. 

DESCRIPTION OF PREFERRED EMBODIMENTS 

FIG. 1 shows by way of example and not limitation, a packet-based 
communication system 100 comprising a plurality of mobile networks (two 
shown, denoted mobile networks 1 and 2). Generally, each mobile network 
comprises one or more mobile network hosts 102 (three shown) attached by link 
104 to a mobile router 106, the mobile router 106 being operably connected by 
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links 108 to one or more external network interfaces 110, 1 12. The mobile 
network hosts 102 comprise IP-addressable devices including, but not limited to, 
laptop computers, wireless mobile or portable two-way radios, cell phones, 
personal digital assistants (PDAs) and the like. The links 104, 108 are logical 
5 links that may be physically realized by wireline (e.g., Ethernet local area network 
(LAN)) or wireless (e.g., Bluetooth) links. 

As defined herein, the term "mobile network host" will be understood to 
include the hosts 102 that are attached to the mobile router that, for the time of 
their attachment, are unaware of movement of the mobile network. The mobile 
10 network hosts 102 may or may not be capable of roaming independently from the 
mobile network. The term "mobile network node" will be understood to include 
the mobile network hosts 102 or the mobile router 106; and the term "mobile 
network" will refer collectively to the mobile router 106 and any attached mobile 
network hosts 102. 

15 As shown, the communication system 100 is organized into a plurality of 

sites 120, 130, 140 each being accessible by one or more wireless access 
technologies. The wireless access technologies may vary from site to site and 
certain sites may have multiple access technologies. As shown, for example, site 
120 (termed a "Wideband Site") is accessible by a first wireless access technology 

20 ("Wireless Access Technology A"); site 130 (termed a "Mixed Site") is accessible 
by radio frequency (RF) scalable amplitude modulation (SAM) and a second 
wireless access technology ("Wireless Access Technology B"); and site 140 
(termed a "Broadband Site") is accessible by Wireless LAN (WLAN). SAM is an 
over-the-air protocol developed by Motorola, Inc. described and claimed in U.S. 

25 Patent Application Serial No. 09/630,235, incorporated herein by reference in its 
entirety. 

Generally, the mobile networks 1 , 2 are physically associated with a 
carrier vehicle or person (not shown), such that they move throughout the 
communication system 100 coincident with movement of the carrier. As the 
30 mobile networks 1,2 move from site to site, they use the appropriate external 
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network interface(s) 1 10, 1 12 to communicate with one or more selected access 
technologies of the site(s). As will be appreciated, the number and/or type of 
external network interfaces may vary for different individual mobile networks 
and/or communication systems. As shown, the external network interfaces of 
5 mobile networks 1, 2 comprise SAM modem 110 and WLAN modem 112. 

Mobile network 1 is using SAM modem 110 and antenna 1 14 to communicate via 
RF resources 116 with SAM access point 132 (site 130); and mobile network 2 is 
using WLAN modem 1 12 to communicate via RF resources 117 with WLAN 
access point 142 (site 140). In one embodiment, as will be described in greater 

10 detail in relation to FIG. 4, the mobile router 106 monitors and selects the 
appropriate external network interface(s) available to the mobile network 
independent from the mobile network nodes, such that the mobile network nodes 
need not even be aware of movement of the mobile network from site to site. 
The sites 120, 130, 140 include various infrastructure devices for 

15 implementing, controlling or processing communications to and/or from the 
mobile networks, represented generally by "Wireless Technology A" block 122 
and Base Radio Controller 124 (site 120); SAM Access blocks 132 and Base 
Radio Controller 134, and Wireless Access Technology B" block 138 (site 130) 
and WLAN Access blocks 142 (site 140). Although not shown, the sites 120, 

20 130, 140 may also include infrastructure devices including, but not limited to, 
dispatch console(s), call logger(s), gatekeeper(s), web server(s), video server(s), 
game server(s), IP gateway(s) ? comparator(s), telephone interconnect device(s), 
internet protocol telephony device(s) or scanner(s). These devices are typically 
wireline devices, i.e., connected by wireline to the base site(s) or other 

25 infrastructure device(s) but may also be implemented as wireless devices. 

The sites 120, 130, 140 are logically coupled, via "access routers" 126, 
136, 144 to one or more "core routers" 148 of the communication system 100. 
The access routers and core routers are logically connected via packet network 
links 146. The core routers 148 are connected to various correspondent nodes 

30 including a home agent 150 and, as shown, a fixed correspondent node 152. 



CM05016H 



6 



Express Mail Label No. ET339127252US 



Although not shown in FIG. 1 , the access routers may also be connected to 
correspondent nodes or the home agent. As will be appreciated, the access 
routers, core routers and home agent are functional router elements that maybe 
embodied in separate physical devices or combinations of such devices. 

Generally, the router elements comprise specialized or general purpose 
computing devices configured to receive IP packets from a particular host in the 
communication system 100 and relay the packets to other router(s) or host(s) in 
the communication system 100. The hosts include at least the mobile network 
nodes 102, mobile router 106, home agent 150 and correspondent nodes 152. 
Each host has a unique IP address. Packets are distributed between hosts from 
point-to-point using IP unicast routing protocols or from point-to-multipoint (i.e., 
to groups of hosts) using IP multicast routing protocols. 

More particularly, routing is based on the IPv6 subnet prefix in a packet's 
destination IP address. Without specific support for mobility in IPv6, packets 
destined to a mobile node (host or router) would not be able to reach it while the 
mobile node is away from its home link (the link on which its "home" IPv6 subnet 
prefix is in use). In order to continue communication in spite of its movement, 
mobile-IPv6 provides for the mobile node receiving a care of address when it 
moves to a new link. In such case, the mobile node is addressable by its care of 
address (and indirectly, by its home address) after moving to a new link. 

The home agent (or "HA") 150 is a router element that registers the 
current care of address of mobile nodes (e.g., the mobile networks 1, 2) and, 
responsive to mobility of a mobile node, intercepts packets destined to the mobile 
node's home address, encapsulates them, and tunnels them to the mobile node's 
registered care of address. As will be described in greater detail in relation to 
FIG. 3, the care of addresses for mobile networks include multicast, as well as 
unicast care of addresses to reduce the number of binding updates that would 
otherwise be required in response to movement of the mobile networks. The 
correspondent nodes (or "CNs")152 comprise peer nodes with which the mobile 
networks or nodes are communicating (or prospectively communicating). The 



CM05016H 



7 



Express Mail Label No. ET339127252US 



correspondent nodes 152 maybe fixed (as shown) or mobile nodes (e.g., mobile 
terminals or other mobile networks). The home agent 150 is also a correspondent 
node, although is a special case of correspondent node that performs mobility 
management functions as described herein. 
5 FIG. 2 is a block diagram useful for illustrating various functional 

elements of the mobile router 106. For convenience, like reference numerals will 
be used to denote like elements in FIG. 1 and FIG. 2. The various functional 
elements may be embodied in one or more processors (which may comprise, for 
example, microprocessors, microcontrollers, digital signal processors or 
10 combination of such devices) and memory devices (which may comprise, for 
example, volatile or non- volatile digital storage devices or combination of such 
devices). 

One or more external interface elements 210 (2 shown) and an internal 
(mobile host) interface 218 logically connect the mobile router, by respective 

15 links 108 and 104 to external interfaces and one or more mobile network hosts. 
The external interfaces may comprise SAM, WLAN or generally any wireless 
access technology interface, as has been described in relation to FIG. 1. A 
multicast care of address (MCoA) binding management element 212 manages the 
assignment of multicast care of address(es) associated with the mobile network 

20 and the formation of binding update messages, as needed, to communicate the 
multicast care of addresses to the home agent or correspondent nodes. A routing 
element 214 performs routing functions for the mobile router 106, that is to send 
and/or receive packets with other routers or hosts of the communication system 
100 using IP unicast or multicast routing protocols, as appropriate. An address 

25 translation element 216 performs address translation functions for packets 
exchanged between a mobile network host and a correspondent node of an 
external network, as will be described in greater detail in relation to FIG. 5 and 
FIG. 6. A binding list 220 stores binding information associated with the mobile 
network and various correspondent nodes. A privacy attribute database 222 

30 stores various privacy attributes of the mobile network hosts relative to various 
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correspondent nodes. As will be described in greater detail in relation to FIG. 8 
and FIG. 9, the privacy attribute database 222 is used by the mobile router to 
determine whether or not to send binding updates to certain correspondent nodes. 

Now turning to FIG. 3, there is shown a flowchart showing various steps 
performed by a mobile router 106 to obtain a multicast care of address associated 
with a mobile network and to communicate the multicast care of address to 
correspondent nodes. The steps of FIG. 3 are implemented, where applicable, 
using stored software routines within the mobile router 106. At block 302, the 
mobile router 106 monitors IP network connectivity of its associated mobile 
network. That is, the mobile router 106 monitors whether the mobile network is 
linked to the IP network infrastructure via its "home" IPv6 subnet prefix or 
whether it has moved to a foreign network requiring a care of address. At block 
304, the mobile router determines whether its IP subnet connectivity has changed. 
For example, a change in BP subnet connectivity may result from movement of the 
mobile network from a home network to a foreign network, from one foreign 
network to another or from a foreign network back to the home network. If, at 
step 304, there is no change in IP subnet connectivity, the process ends until such 
time as there is a change in IP subnet connectivity. 

Otherwise, if there is a change in IP subnet connectivity, the process 
proceeds to step 306 to determine whether the mobile network has a multicast 
care of address. If not, the mobile router 106 obtains a multicast care of address at 
step 308 to be used as a proxy address for the mobile network hosts while the 
mobile network is away from its home network. At step 310, the mobile router 
creates a binding update message binding (or associating) the IP multicast care of 
address ("MCoA") to the mobile subnet prefix of the mobile network. 

After having obtained a multicast care of address at step 308, or if the 
mobile network is determined at step 306 to already have a multicast care of 
address, the mobile router joins the multicast care of address at step 312 on behalf 
of the mobile network. Having joined the multicast care of address, the mobile 
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router is able to receive messages addressed to the multicast care of address from 
the home agent or correspondent nodes. 

Then, at step 314, the mobile router determines whether it desires to send a MCoA 
binding update message to correspondent nodes. This decision may be based 
5 upon security policies, quality of service policies or privacy attributes relative to 
the correspondent nodes. If MCoA binding update(s) are desired to be sent to 
correspondent node(s), the mobile router sends the binding updates to the selected 
CNs at step 316. The MCoA binding updates may be sent separately or 
"piggybacked" along with message packets addressed to the CNs. The MCoA 

10 binding updates inform the CNs of the multicast care of address so that they may 
send messages directly to the multicast care of address, rather than the home 
address, to avoid triangular routing. 

Next, at step 318, the mobile router determines whether it needs or desires 
to send a MCoA binding update to the home agent. If so, the mobile router sends 

15 a MCoA binding update message to the HA at step 320. The MCoA binding 
updates maybe sent separately or "piggybacked" along with message packets 
addressed to the HA. 

In one embodiment, the mobile router obtains a unicast care of address as 
well as a multicast care of address upon changes in IP subnet connectivity of the 

20 mobile network. The mobile router obtains the unicast care of address ("CoA") at 
step 322. At step 324, the mobile router determines whether it desires to send a 
unicast CoA binding update message to the home agent or correspondent nodes. 
As with the MCoA binding update, this decision may be based upon security 
policies, quality of service policies or privacy attributes relative to the 

25 correspondent nodes. If CoA binding update(s) are desired to be sent to the HA or 
CN(s), the mobile router sends the CoA binding updates to the HA and/or selected 
CNs at step 326. The CoA binding updates inform the CNs of the unicast care of 
address so that they may send messages directly to the unicast care of address, 
rather than the home address, to avoid triangular routing. Thus, the CNs, if so 

30 informed, may address packets to either the multicast or unicast care of address to 
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avoid triangular routing. Alternatively, it is envisioned that the mobile network 
could use only a multicast care of address and eliminate the unicast care of 
address. 

FIG. 4 is a flowchart useful for showing how the multicast care of address 
5 according to the present invention enables smooth vertical handoffs between 

external networks. The steps of FIG. 4 are implemented, where applicable, using 
stored software routines within the mobile router 106. At block 402, the mobile 
router 106 monitors its router interfaces to determine its accessibility to external 
networks. For example, with reference to FIG. 1, the mobile router 106 (having 

10 SAM and WLAN interfaces) determines whether it is within the coverage area of 
a SAM site and/or WLAN site. At block 404, the mobile router determines 
whether a new interface is available. Thus, for example, if the mobile router 106 
is presently communicating with a SAM site, it may determine that a WLAN site 
is also accessible. In such case, the mobile router determines at step 406 whether 

15 it desires to perform a vertical handoff on the interface (i.e., to switch to the 

WLAN site). If a vertical handoff is not desired, the process ends until such time 
as a new interface becomes available. 

As will be appreciated, various possible strategies may be used for the 
mobile router to determine whether to perform a vertical handoff. Some examples 

20 are: the mobile router may choose WLAN or SAM based on the application (e.g., 
voice, video, web, data, etc.); it may choose vertical mobility on an as needed 
basis (e.g., move from SAM to WLAN if communication is impaired on SAM 
link); or it may favor WLAN hotspots (e.g., always use WLAN when available, 
and switch back to SAM when WLAN is out of reach). Having determined that a 

25 vertical handoff is desired, the mobile router optionally determines at step 408 
which CNs to correspond with on the new interface. That is, the mobile router 
may choose to correspond with only a subset of the CNs on the new interface, 
while continuing to correspond with certain CNs on the previous interface. The 
vertical handoff might otherwise nominally result in changing all CNs and flows 

30 to the new interface. The mobile router joins the multicast care of address at step 
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410 on the new interface, by issuing (in IPv6 terminology) multicast listener 
discovery (MLD) "Report" messages to an attached router as is known in the art. 

After the mobile router joins the multicast care of address on the new 
interface, the routers of the network create new branches of a multicast routing 
5 tree, as appropriate, to enable the mobile router to receive messages addressed to 
the multicast care of address from the home agent or correspondent nodes, via the 
new external interface (e.g., the WLAN site). For example, with reference to FIG. 
1, suppose the mobile router is presently communicating, via its SAM interface, 
with site 130 (i.e., the mixed site). In such case, a multicast routing tree will 

10 already have been established that connects site 130 to the HA and CNs but most 
likely will not include site 140. Upon the mobile router determining that a 
vertical handoff is desired to the WLAN interface to communicate with site 140 
(i.e., the broadband site) and upon the mobile router joining the multicast group 
on the WLAN interface, the routers of the network will create a new branch of the 

15 multicast routing tree that extends to the broadband site 140. Optionally, if the 
multicast group joined at step 410 is a new multicast group (determined at step 
412), the mobile router may send a MCoA binding update message to 
correspondent nodes or the home agent such as described in relation to FIG. 3. 
At step 416, the mobile router determines whether it wishes to leave the 

20 multicast group address on the old interface. If so, the mobile router sends leave 
messages at step 418 to leave the multicast group address on the old interface, 
causing the routers of the network to remove or "prune" any unnecessary 
branch(es) of the multicast routing tree. Thus, continuing the previous example, 
upon the mobile router leaving the multicast group on the SAM interface, the 

25 routers of the network may prune the branch of the multicast routing tree that 
leads to the mixed site 130. If, at step 416, the mobile router determines that it 
does not wish to leave the multicast group on the old interface, the mobile router 
remains joined to the multicast group address on the old interface so as to 
continue to receive packets on the old interface (e.g., from the mixed site 130) as 

30 well as the new interface (e.g., from the broadband site 140). 
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As will be appreciated, the present invention also provides for smooth 
horizontal handoffs (e.g., between different SAM sites) in similar fashion as 
vertical handoffs. In the preferred embodiment, the horizontal and/or vertical 
handoffs are performed by the mobile router independent from the mobile 
5 network nodes and correspondent nodes. Thus, for example, where the mobile 
router has a SAM interface and a WLAN interface, neither the CN or the mobile 
network nodes will generally care which interface the mobile router receives or 
sends its packets on. Vertical handoffs and horizontal handoffs are the same from 
this perspective. Typically, each mobile host has only one active IP address while 

10 attached to the mobile router. The hosts will send and receive packets on this 
interface and will not break a session when the mobile router switches between 
SAM and WLAN or switches between different SAM sites. 

FIG. 5 shows various steps performed by a mobile router to process IP 
packets received from correspondent nodes. The steps of FIG. 5 are implemented, 

15 where applicable, using stored software routines within the mobile router 1 06. At 
step 502, the mobile router receives packets from an external network. Thus, for 
example, the mobile router may receive packets from a SAM site or WLAN site 
that are targeted to one of the mobile network nodes. At step 504, the mobile 
router determines whether the packets were tunneled from the home agent and 

20 thereby were non-optimally routed (i.e., triangularly routed) to the mobile router. 

In the case where a CN communicates for the first time with a mobile 
network host (or has not communicated recently enough to know the mobile 
network host should be reached by its care of address), the CN will create 
standard EP packet(s) and send the packets to the host's home address. The 

25 packet(s) will include a source address field including the unicast IP address of 

the sourcing CN and a destination address field including the unicast IP address of 
the targeted mobile network node. The packets are routed through the network to 
the mobile router's home network (i.e., the network to which the mobile network 
is attached) where they are intercepted by the mobile router's home agent. Here, 

30 according to principles of the present invention, the home agent will find the 
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mobile network's subnet bound to a multicast care of address. The home agent 
will then encapsulate the original IP packet(s) in a new outer IPv6 header, with 
the outer IP packet indicating the home agent as the source and the multicast CoA 
of the mobile network as the destination address. 
5 In the case where packets are sent from a CN directly to the multicast care 

of address of the mobile network, the packet will include an IPv6 routing header 
(instead of IPv6 encapsulation) with the targeted mobile network node's unicast 
address. Thus, the mobile router may determine that packets were tunneled by 
detecting the presence of an outer IP header from the home agent; or the mobile 

10 router may determine that packets were not tunneled by detecting an inner routing 
header including the unicast IP address of the targeted host. 

If the packets were determined to be tunneled by the HA (i.e., the packets 
were non-optimally routed from the CN), the process proceeds to step 510 where 
the mobile router removes the outer IPv6 header of the tunneled packet, yielding 

15 an inner IP header having the DP address of the targeted mobile network host. The 
mobile router determines at step 512 whether to send a binding update to the CN 
and thereby optimize routing. If a binding update is desired, a binding update 
message is created at step 514 mapping the subnet prefix of the mobile network to 
the MCoA and/or unicast Co A, and the binding update is sent to the CN at step 

20 516 so that future packets may travel the shortest tree and avoid the overhead of 
tunneling. After having sent the binding update, or if a binding update is not 
desired, the original IP packet is forwarded to the mobile network host identified 
in the destination field of the inner IP header, on one of its directly connected 
subnets at step 518. 

25 If the packets were determined not to be tunneled from the HA (i.e., the 

packets were sent directly from a CN), the process proceeds to step 506 where it is 
determined whether the received packets include a router header extension, i.e., 
defining a unicast address of a target mobile network host. If so, the mobile 
router at step 520 replaces the IP destination address in the received packet(s) 

30 with the unicast address identified in the router header extension (thereby placing 
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the unicast address into a target destination field) and removes the router header 
extension at step 522 before forwarding the packets to the mobile network host at 
step 518. 

If, at step 506, the packets are determined not to include a router header 

5 extension, it is determined at step 508 whether the packets are destined for the 
mobile router. If they are, the packets are processed by the mobile router at step 
524 and the process ends. If not, the mobile network is at home and the packets 
are forwarded to the mobile network at step 526. 

FIG. 6 is a flowchart showing steps performed by mobile routers to 

10 process IP packets sent from a mobile network host to a correspondent node. The 
steps of FIG. 6 are implemented, where applicable, using stored software routines 
within the mobile router 106. At step 602, the mobile router intercepts IP 
packet(s) sent from the mobile network host. The packet(s) will include a source 
address field including the unicast IP address of the sourcing mobile network host 

15 and a destination address field including the IP address of the targeted CN, It is 
noted that the destination IP address may comprise a normal unicast address (i.e., 
the home address of the CN), a unicast care of address (i.e., in case the CN is 
itself mobile) or a multicast care of address (i.e., in case the CN is attached to a 
mobile network of its own). In the case where the destination address is a 

20 multicast address (i.e., the MCoA of the CN), the packets formed by the mobile 
network host will also include a routing header with the CN's unicast address. At 
step 604, the mobile router examines the IP destination address of the packet(s). 
If the packets are destined for the mobile router (determined at step 606), the 
mobile router processes the packet at step 618 and the process ends. 

25 If the packets are not destined for the mobile router (i.e., they are destined 

for a correspondent node), the process proceeds to steps 608-616. At step 608, the 
mobile router stores the unicast DP address of the source (obtained from the source 
address field) of the intercepted packet. At step 610, the mobile router replaces 
the unicast IP address in the source address field with the CoA associated with the 

30 mobile router sourcing interface (i.e., the external interface that is being used by 
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the mobile router to source the packets into the network). At step 612, the mobile 
router adds a home address extension field to the IP packet header(s) and at step 
614, places the unicast DP address of the sourcing mobile network host (retrieved 
from storage at step 620) in the home address extension field. Thus, the packet(s) 
5 modified by the mobile router will have a source address field including the 
mobile router's Co A; a destination address field including the MCoA, unicast 
address or unicast CoA of the targeted CN; and a home address field including the 
IP address of the sourcing mobile network host. In the case where the destination 
address is the MCoA or CoA of the CN 5 the packets to be sent by the mobile 

10 router will also include a routing header with the CN's unicast address. At step 
616, the mobile router sends the packets to the CN via the appropriate external 
interface. Upon reaching the targeted CN, the CN will swap the IP header's 
source address and home address field to find the true source address and pass that 
address to the upper layer protocol (as per standard IPv6 behavior). 

15 One of the advantageous features of using a multicast care of address, 

rather than unicast care of address is that it significantly minimizes mobile-IP 
binding updates. Rather than sending binding updates to every CN and HA on 
every site change (i.e., as for unicast CoA), the MCoA remains the same and 
typically there are no binding updates (only a single multicast Join) upon mobile 

20 network subnet changes. This is best observed in FIGs. 7a-7g. 

Referring initially to FIG. 7a, there is shown a mobile network 700 
comprising a mobile router 706 attached by link 704 to various mobile network 
nodes 702. The mobile network is initially attached to its "home" IP v6 subnet 
prefix 145.1 and is linked to its home agent ("HA") 750. The home agent 750 is 

25 connected by various routers forming an IP network to wireless sites 720, 730 and 
fixed correspondent nodes 752, The mobile network then moves to a foreign 
network, site 720. As shown in FIG. 7b, the mobile router decides that it needs to 
inform its HA how to reach its new subnet. It does so by sending a binding 
update message 760 to the HA. The binding update identifies the multicast care 

30 of address of the mobile network and binds it to the prefix 3080:7C:0:3::/64 (as 
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shown). The unicast and multicast care of addresses may be identified in the 
same or different binding update message(s). The HA indicates that it has 
received the binding update with an acknowledgement message 762. 

Next, as shown in FIG. 7c, the mobile router decides that it needs to 
5 inform its CNs 752 how to reach its new subnet. It does so by sending a binding 
update message 764 to the CNs 752. As with the binding update sent to the HA, 
the binding update 764 identifies the multicast care of address of the mobile 
network and binds it to the prefix 3080:7C:0:3::/64 (as shown). The unicast and 
multicast care of addresses maybe identified in the same or different binding 

10 update message(s). The CNs indicate that they have received the binding update 
with an acknowledgement message 766. 

As best observed in FIG. 7d, the mobile router joins the multicast address, 
causing the routers of the network to form a multicast routing tree extending to the 
foreign site 720. Upon a CN sending an IP packet to the multicast care of address, 

15 the packet is routed to the mobile network 700. Then, as shown in FIG. 7e, the 
mobile network moves again, to site 730. The mobile router joins the multicast 
address on the new network causing the routers of the network to form a new 
branch of the multicast routing tree extending to site 730. As shown in FIG. 7f, 
the packets from the CN are routed to the mobile network 700 at its new location 

20 with little or no interruption in service flow, without the mobile router having sent 
any more binding updates. Only a single multicast join was required. The 
packets also continue to be routed to the former site 720, until such time as the 
former site leaves the multicast address. Then, as shown in FIG. 7g ? site 720 
leaves the multicast address, causing the routers of the network to prune the 

25 branch of the multicast routing tree leading to site 720, 

Another advantageous feature of the present invention is that a mobile 
network host may choose to keep its location private from certain correspondent 
nodes. This is accomplished by specifying privacy attributes that indicate how the 
mobile router should discriminate in sending binding updates to the CNs. FIG. 8 

30 shows steps performed by a mobile node to establish (or not establish) privacy 
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policies with the mobile router; and FIG. 9 shows steps performed by a mobile 
router responsive to receiving the privacy policies. The steps of FIG. 8 and 9 are 
implemented, where applicable, using stored software routines within the mobile 
router and/or mobile network nodes. 
5 Turning first to FIG, 8, the process starts at step 802 with a mobile 

network node establishing a connection with the mobile router. At step 804, the 
mobile network node determines whether it wishes to establish any privacy 
policies. If not, the process ends. Otherwise, at step 806, the mobile network 
node determines whether it desires to send binding updates to all active CNs 

10 communicating with the mobile network node. In such case, the mobile network 
node registers privacy attributes with the mobile router at step 808 that allow the 
mobile router to send such binding updates to the active CNs. 

If the mobile network node doesn't wish to send binding updates to all 
CNs, the process proceeds to step 810 where it is determined whether the mobile 

15 network node desires to refrain from sending binding updates to any CNs (i.e., to 
send binding updates to no CNs). In such case, the mobile network node registers 
privacy attributes with the mobile router at step 808 that disallow the mobile 
router from sending binding updates to any CNs. 

If the mobile network node neither wishes to send binding updates to all 

20 CNs or no CNs, the process proceeds to step 812 where it is determined whether 
the mobile network node desires the mobile router to send binding updates to an 
inclusive list of CNs (i.e., all CNs that satisfy a certain selection criteria). The 
selection criteria may be based on a variety of factors. Some examples include 
selecting all CNs that are within a certain range of IP addresses, or selecting all 

25 CNs that are members of an autonomous system (e.g., a company-wide system of 
Motorola, Inc.). If the mobile network node determines that it wishes the mobile 
router to send binding updates according to such an inclusive list, it registers 
privacy attributes with the mobile router at step 808 that specify the inclusive list. 
If the mobile network node does not choose any of the previous options 

30 for sending binding updates, the process proceeds to step 814 where it is 
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determined whether the mobile network node desires the mobile router to send 
binding updates to an exclusive list of CNs (i.e., all CNs except those that satisfy a 
certain selection criteria). For example, the exclusive list may cause the mobile 
router to send binding updates to all CNs except those that are within a certain 
5 range of IP addresses, or to all CNs except those that are members of a certain 
autonomous system. If the mobile network node determines that it wishes the 
mobile router to send binding updates according to such an exclusive list, it 
registers privacy attributes with the mobile router at step 808 that specify the 
exclusive list. 

10 Now turning to FIG. 9, there is shown various steps performed by a 

mobile router relative to processing privacy policy requests from a mobile 
network node. At step 902, the mobile router determines whether it has received a 
policy registration request from a mobile network node. If so, it interprets the 
request at step 904 to define one or more privacy attributes associated with the 

15 mobile network node. As has been described in relation to FIG. 8, the privacy 
policy attributes may instruct the mobile router to send binding updates to all 
active CNs, or no CNs, or to send binding updates according to an inclusive or 
exclusive list of CNs. The mobile router stores the privacy attributes at step 906. 
If the mobile router has not received a privacy policy request from a 

20 mobile network node, the process proceeds to step 908 where it is determined 
whether the mobile router detects a new external network (i.e., resulting from 
horizontal or vertical mobility of the mobile network). If so ? the mobile router 
determines at step 910 whether to send a binding update on behalf of the mobile 
network node. The process similarly proceeds to step 910 if triangulation is 

25 detected by the mobile router (determined at step 914) or upon a binding update 
refresh being requested for the mobile network node (determined at step 916), If 
the mobile router determines at step 910 that it should send binding update(s) on 
behalf of the mobile network node, it does so at step 912, as appropriate according 
to any established privacy attributes. That is, if the mobile network node had 

30 previously registered privacy attributes with the mobile router, the mobile router 
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will send the binding updates to a number of CNs based on the privacy attributes. 
In one embodiment, if the mobile network node had not previously registered any 
privacy attributes with the mobile router, the mobile router will send binding 
updates according to a predetermined default privacy attribute policy (e.g., 
5 perhaps all CNs). The process ends after the mobile router has completed sending 
binding update(s) at step 912, or if the mobile router determines that it does not 
need to send any binding updates at step 910. 

The present disclosure has identified a mobility solution for mobile 
networks that provides smooth handoffs by combining features of IP multicast 

10 and mobile-IPv6, The solution builds on top of and is interoperable with mobile- 
IP v6. The present invention nearly eliminates binding update storms and 
minimizes handover times, is independent of the layer 1/layer 2 access technology 
(e.g., SAM and WLAN) and thereby supports vertical handoffs. As the mobile 
network roams, it only needs to join a single multicast group to maintain 

15 connectivity to the home agent and correspondent nodes. The invention allows a 
mobile network host to keep its location private from certain correspondent nodes 
by specifying how the mobile router should discriminate in sending binding 
updates to the CNs. 

The present invention may be embodied in other specific forms without 

20 departing from its spirit or essential characteristics. The described embodiments 
are to be considered in all respects only as illustrative and not restrictive. The 
scope of the invention is, therefore, indicated by the appended claims rather than 
by the foregoing description. All changes that come within the meaning and 
range of equivalency of the claims are to be embraced within their scope. 
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